Resources
Providing you the latest industry-specific news and insights.
![]()
What To Do When A Hacker Encrypts Your Data
What should your first step be when a hacker cracks your system? Evgueni Erchov, Arete's head of security research & strategy shares insight with Risk & Insrance's Autumn Demberger.
Read more![]()
Cybersecurity in the Age of Ransomware. It’s More Than Simply Having Insurance.
In many ways, cybersecurity insurance is not so different from car or home insurance.
Read more![]()
Surtr Ransomware Pays Tribute to REvil
Surtr ransomware, a significant 2022 cyber threat, paid tribute to the now defunct REvil (aka Sodinokibi) group through its sophisticated techniques, although the developers of Surtr ransomware likely do not have a direct connection to REvil.
Read more![]()
Fool Us Once … BlackMatter Initial Access Tactics Point to a Possible REvil Association
Arete observed an overlap between a recent BlackMatter case and a Q1 2021 REvil case.
Read more
Endpoint Detection and Response: The Closest Thing to a Silver Bullet to Stop Ransomware
By Paul Caron In its recent report “Combating Ransomware,” the Ransomware Task Force says there’s no silver bullet to solving the ransomware challenge. Instead, the group touts a multi-pronged approach and provides an extensive list of…
Read morePYSA: 2020 to Now
BY ARETE CYBER THREAT INTELLIGENCE TEAM PYSA is the newest variant of the Mespinoza Ransomware as a Service (RaaS) family, which was first observed infecting victims in the wild in December 2019. PYSA is likely a reference to the open-source web…
Read more![]()
Avaddon Ransomware Hits AXA
Avaddon ransomware allegedly attacked European insurance provider AXA shortly after the company announced that it will stop paying ransoms for its clients. Our analysis provides an in-depth look at Avaddon’s tactics and recommended mitigations.
Read moreColonial Pipeline Breached by Darkside Ransomware Group
On Saturday May 8, US Colonial Pipeline announced that they were victim of a ransomware attack that affected their network on Friday May 7. US Colonial Pipeline is said to be the largest fuel pipeline in the United States and the main source of…
Read more![]()
The Hidden Costs of Cybercrime
This year, the global cost of cybercrime is expected to hit $6 trillion.[i] Up from $3 trillion in 2015, it’s nothing short of a big, flourishing business whose operators are relentless innovators.
Read more![]()
Black Kingdom Returns to Exploit Zero-Day Vulnerabilities in Unpatched Microsoft Exchange Servers
Black Kingdom ransomware recently resurfaced to target a zero-day vulnerability in Microsoft Exchange servers.
Read more![]()
Microsoft Exchange Server Zero Day Hack Insight
On March 2, 2021, Microsoft disclosed and provided security updates for four [4] critical vulnerabilities — CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065 — impacting on-premises Microsoft Exchange Servers.
Read moreDon’t Drink from That! Gootloader Watering Hole Leads to REvil Attack
REvil, more commonly referred to as Sodinokibi, is one of the most prolific ransomware threat groups currently active in the cyber extortion space. In the past year alone, Arete has responded to countless incidents where REvil has facilitated…
Read more
